Blazing fast file uploader and awesome bunker written in node! 🚀
Go to file
2017-11-07 16:03:50 -03:00
controllers ugh, little mistake 2017-10-04 15:20:07 -03:00
database Added album downloading through front-end 2017-10-04 02:05:38 -03:00
pages Make ShareX link download a sharex file if you're logged in 2017-10-06 16:58:39 +10:30
public removed extraneous space 2017-11-02 21:19:57 -07:00
routes Added album downloading through front-end 2017-10-04 02:05:38 -03:00
views Aligned the album download button 2017-10-10 14:56:20 -03:00
.gitignore Modified gitignore 2017-10-03 17:36:11 -03:00
config.sample.js Added album downloading through front-end 2017-10-04 02:05:38 -03:00
LICENSE Added license 2017-01-30 05:10:46 -03:00
lolisafe.js Added album downloading through front-end 2017-10-04 02:05:38 -03:00
nginx.sample.conf Updated README and added nginx sample configuration file 2017-10-04 02:26:00 -03:00
package.json Added album downloading through front-end 2017-10-04 02:05:38 -03:00
README.md Update README.md 2017-11-07 16:03:50 -03:00
yarn.lock Added handlebars dependency and yarn.lock 2017-09-20 03:02:14 -03:00

loli-safe GitHub license Chat / Support

lolisafe, a small safe worth protecting.

What's new in v3.0.0

  • Backend rewrite to make it faster, better and easier to extend
  • Album downloads (Thanks to PascalTemel)
  • See releases for changelog

If you're upgrading from a version prior to v3.0.0 make sure to run ONCE node database/migration.js to create the missing columns on the database.

Running

  1. Ensure you have at least version 7.6.0 of node installed
  2. Clone the repo
  3. Rename config.sample.js to config.js
  4. Modify port, domain and privacy options if desired
  5. run npm install to install all dependencies
  6. run pm2 start lolisafe.js or node lolisafe.js to start the service

Getting started

This service supports running both as public and private. The only difference is that one needs a token to upload and the other one doesn't. If you want it to be public so anyone can upload files either from the website or API, just set the option private: false in the config.js file. In case you want to run it privately, you should set private: true.

Upon running the service for the first time, it's gonna create a user account with the username root and password root. This is your admin account and you should change the password immediately. This account will let you manage all uploaded files and remove any if necessary.

The option serveFilesWithNode in the config.js dictates if you want lolisafe to serve the files or nginx/apache once they are uploaded. The main difference between the two is the ease of use and the chance of analytics in the future. If you set it to true, the uploaded files will be located after the host like: https://lolisafe.moe/yourFile.jpg

If you set it to false, you need to set nginx to directly serve whatever folder it is you are serving your downloads in. This also gives you the ability to serve them, for example, like this: https://files.lolisafe.moe/yourFile.jpg

Both cases require you to type the domain where the files will be served on the domain key below. Which one you use is ultimately up to you. Either way, I've provided a sample config file for nginx that you can use to set it up quickly and painlessly!

If you set enableUserAccounts: true, people will be able to create accounts on the service to keep track of their uploaded files and create albums to upload stuff to, pretty much like imgur does, but only through the API. Every user account has a token that the user can use to upload stuff through the API. You can find this token on the section called Change your token on the administration dashboard, and if it gets leaked or compromised you can renew it by clicking the button titled Request new token.

Using loli-safe

Once the service starts you can start hitting the upload endpoint at /api/upload with any file. If you're using the frontend to do so then you are pretty much set, but if using the API to upload make sure the form name is set to files[] and the form type to multipart/form-data. If the service is running in private mode, dont forget to send a header of type token: YOUR-CLIENT-TOKEN to validate the request.

A sample of the returning json from the endpoint can be seen below:

{
	"name": "EW7C.png",
	"size": "71400",
	"url": "https://i.kanacchi.moe/EW7C.png"
}

To make it easier and better than any other service, you can download our Chrome extension that will let you configure your hostname and tokens, so that you can simply right click -> send to loli-safe to any image/audio/video file on the web.

Because of how nodejs apps work, if you want it attached to a domain name you will need to make a reverse proxy for it. Here is a tutorial on how to do this with nginx. Keep in mind that this is only a requirement if you want to access your loli-safe service by using a domain name (ex: https://i.kanacchi.moe), otherwise you can use the service just fine by accessing it from your server's IP.

Sites using loli-safe

  • lolisafe.moe: A small safe worth protecting.
  • safe.moe: The world's most unsafe pomf clone
  • Feel free to add yours here.

Author

lolisafe © Pitu, Released under the MIT License.
Authored and maintained by Pitu.

lolisafe.moe · GitHub @Pitu